Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Q0MUPSMjL8Na9MndhNcnoDtmSEE.roa
File: Q0MUPSMjL8Na9MndhNcnoDtmSEE.roa (raw, json)
Hash identifier: awbzmYxJt8dLDNg/u9Ap0KefnXjxlA1SL0oOIgizchc=
Subject key identifier: 43:43:14:3D:23:23:2F:C3:5A:F4:C9:DD:84:D7:27:A0:3B:66:48:41
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 0183FA9FFACE445EFD3590E864575579B328
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Q0MUPSMjL8Na9MndhNcnoDtmSEE.roa
Signing time: Fri 21 Oct 2022 12:58:51 +0000
ROA not before: Fri 21 Oct 2022 12:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209836
IP address blocks: 87.107.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fa:9f:fa:ce:44:5e:fd:35:90:e8:64:57:55:79:b3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Oct 21 12:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4343143d23232fc35af4c9dd84d727a03b664841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:17:a3:73:a0:72:c9:00:76:ac:6f:85:36:03:
ab:49:e2:88:84:df:b2:e7:f9:d9:26:94:fe:7c:e1:
7f:d9:c3:3b:52:96:b3:fc:39:9a:55:d1:42:f7:9c:
6b:25:8a:ee:b0:39:a9:80:c2:08:d8:04:1a:09:25:
58:b4:72:9d:df:d5:2b:0d:34:49:ee:6e:c4:cb:ce:
ba:8b:35:d6:18:f4:ed:e5:04:86:b2:da:ce:05:24:
88:2d:7e:d1:91:41:d6:46:da:b0:e3:0e:2b:f1:fd:
58:ed:7e:41:bb:f4:77:43:52:20:1b:01:1f:e5:eb:
d2:51:b4:ee:f0:77:79:42:37:6a:a4:99:f5:b3:30:
ac:e5:d1:a3:64:fe:77:3a:07:75:07:97:40:72:05:
7b:36:67:f6:ff:b9:9d:b0:1b:a8:f9:c6:7c:7b:d8:
6f:14:88:b9:ec:96:d5:71:3a:0a:4d:e0:c2:f7:ea:
2c:29:3e:8d:3f:f9:a3:c5:4c:d9:70:db:2f:be:8d:
e5:c0:9c:d0:c0:b3:f8:43:30:3e:fe:0e:99:ac:3e:
bb:68:99:a1:88:56:d4:b6:0f:80:d5:7c:ad:54:48:
5c:f7:b7:fb:25:ad:4a:c4:1a:9a:00:2d:93:3c:1b:
6c:72:84:94:cf:68:8e:1c:77:f8:0d:1a:f4:6f:9d:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:43:14:3D:23:23:2F:C3:5A:F4:C9:DD:84:D7:27:A0:3B:66:48:41
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/Q0MUPSMjL8Na9MndhNcnoDtmSEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.160.0/22
Signature Algorithm: sha256WithRSAEncryption
69:48:1c:88:aa:18:95:93:11:a3:9c:bc:ab:9e:fc:f2:98:37:
2e:af:bc:6d:be:1e:ad:67:91:42:1f:6c:65:42:a8:b4:4c:ac:
f5:88:2e:ec:f4:b0:50:d5:d7:b7:08:e4:f3:2f:2a:74:14:90:
d5:9d:cf:ee:d3:81:7a:e5:85:eb:d7:b2:40:10:97:7f:99:48:
54:51:77:c3:cf:83:13:fb:6c:ce:5a:1a:8f:d0:94:9d:30:1a:
31:15:e2:4f:00:2e:66:dc:82:d6:68:ef:d1:34:ad:dc:28:a1:
74:6d:c4:56:ee:bd:c7:0d:e9:54:e6:1e:ed:aa:cc:98:6e:0a:
71:5b:e5:16:78:72:46:33:c2:f9:b1:f2:41:8f:2e:b0:5c:b9:
ca:86:be:10:ad:27:13:41:ec:c9:0f:71:b8:5b:d8:7f:79:2c:
32:69:37:07:f5:06:68:3f:74:fc:cb:87:0a:60:80:fe:4d:74:
f4:9d:fb:15:fa:75:f1:9a:48:59:97:df:1f:47:9e:6e:18:dd:
cc:88:ce:84:6f:e9:9f:35:b5:ef:dc:77:38:66:de:2c:c3:60:
2d:28:e3:a8:0c:ee:aa:9e:59:f4:54:77:45:90:0f:31:e0:b1:
96:d9:99:00:33:29:31:39:71:d4:82:4e:b9:53:f5:d7:63:c8:
90:51:9d:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:39 2023 by rpki-client on console-fra.rpki-client.org